gitlord
/
synapse
mirror of https://github.com/matrix-org/synapse.git
1
0
Fork 0
Code Issues 0 Releases 671 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
23441 Commits
842 Branches
432 MiB
 
 
 
 
 
 
Branch: develop
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'develop'
${ noResults }
synapse/tests/config/test_server.py

189 lines
6.2 KiB
Raw Permalink Blame History 

  1. # Copyright 2019 New Vector Ltd

  2. #

  3. # Licensed under the Apache License, Version 2.0 (the "License");

  4. # you may not use this file except in compliance with the License.

  5. # You may obtain a copy of the License at

  6. #

  7. #     http://www.apache.org/licenses/LICENSE-2.0

  8. #

  9. # Unless required by applicable law or agreed to in writing, software

  10. # distributed under the License is distributed on an "AS IS" BASIS,

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. # See the License for the specific language governing permissions and

  13. # limitations under the License.

  14. 

  15. import yaml

  16. 

  17. from synapse.config._base import ConfigError

  18. from synapse.config.server import ServerConfig, generate_ip_set, is_threepid_reserved

  19. 

  20. from tests import unittest

  21. 

  22. 

  23. class ServerConfigTestCase(unittest.TestCase):

  24.     def test_is_threepid_reserved(self) -> None:

  25.         user1 = {"medium": "email", "address": "user1@example.com"}

  26.         user2 = {"medium": "email", "address": "user2@example.com"}

  27.         user3 = {"medium": "email", "address": "user3@example.com"}

  28.         user1_msisdn = {"medium": "msisdn", "address": "447700000000"}

  29.         config = [user1, user2]

  30. 

  31.         self.assertTrue(is_threepid_reserved(config, user1))

  32.         self.assertFalse(is_threepid_reserved(config, user3))

  33.         self.assertFalse(is_threepid_reserved(config, user1_msisdn))

  34. 

  35.     def test_unsecure_listener_no_listeners_open_private_ports_false(self) -> None:

  36.         conf = yaml.safe_load(

  37.             ServerConfig().generate_config_section(

  38.                 "CONFDIR", "/data_dir_path", "che.org", False, None

  39.             )

  40.         )

  41. 

  42.         expected_listeners = [

  43.             {

  44.                 "port": 8008,

  45.                 "tls": False,

  46.                 "type": "http",

  47.                 "x_forwarded": True,

  48.                 "bind_addresses": ["::1", "127.0.0.1"],

  49.                 "resources": [{"names": ["client", "federation"], "compress": False}],

  50.             }

  51.         ]

  52. 

  53.         self.assertEqual(conf["listeners"], expected_listeners)

  54. 

  55.     def test_unsecure_listener_no_listeners_open_private_ports_true(self) -> None:

  56.         conf = yaml.safe_load(

  57.             ServerConfig().generate_config_section(

  58.                 "CONFDIR", "/data_dir_path", "che.org", True, None

  59.             )

  60.         )

  61. 

  62.         expected_listeners = [

  63.             {

  64.                 "port": 8008,

  65.                 "tls": False,

  66.                 "type": "http",

  67.                 "x_forwarded": True,

  68.                 "resources": [{"names": ["client", "federation"], "compress": False}],

  69.             }

  70.         ]

  71. 

  72.         self.assertEqual(conf["listeners"], expected_listeners)

  73. 

  74.     def test_listeners_set_correctly_open_private_ports_false(self) -> None:

  75.         listeners = [

  76.             {

  77.                 "port": 8448,

  78.                 "resources": [{"names": ["federation"]}],

  79.                 "tls": True,

  80.                 "type": "http",

  81.             },

  82.             {

  83.                 "port": 443,

  84.                 "resources": [{"names": ["client"]}],

  85.                 "tls": False,

  86.                 "type": "http",

  87.             },

  88.         ]

  89. 

  90.         conf = yaml.safe_load(

  91.             ServerConfig().generate_config_section(

  92.                 "CONFDIR", "/data_dir_path", "this.one.listens", True, listeners

  93.             )

  94.         )

  95. 

  96.         self.assertEqual(conf["listeners"], listeners)

  97. 

  98.     def test_listeners_set_correctly_open_private_ports_true(self) -> None:

  99.         listeners = [

  100.             {

  101.                 "port": 8448,

  102.                 "resources": [{"names": ["federation"]}],

  103.                 "tls": True,

  104.                 "type": "http",

  105.             },

  106.             {

  107.                 "port": 443,

  108.                 "resources": [{"names": ["client"]}],

  109.                 "tls": False,

  110.                 "type": "http",

  111.             },

  112.             {

  113.                 "port": 1243,

  114.                 "resources": [{"names": ["client"]}],

  115.                 "tls": False,

  116.                 "type": "http",

  117.                 "bind_addresses": ["this_one_is_bound"],

  118.             },

  119.         ]

  120. 

  121.         expected_listeners = listeners.copy()

  122.         expected_listeners[1]["bind_addresses"] = ["::1", "127.0.0.1"]

  123. 

  124.         conf = yaml.safe_load(

  125.             ServerConfig().generate_config_section(

  126.                 "CONFDIR", "/data_dir_path", "this.one.listens", True, listeners

  127.             )

  128.         )

  129. 

  130.         self.assertEqual(conf["listeners"], expected_listeners)

  131. 

  132. 

  133. class GenerateIpSetTestCase(unittest.TestCase):

  134.     def test_empty(self) -> None:

  135.         ip_set = generate_ip_set(())

  136.         self.assertFalse(ip_set)

  137. 

  138.         ip_set = generate_ip_set((), ())

  139.         self.assertFalse(ip_set)

  140. 

  141.     def test_generate(self) -> None:

  142.         """Check adding IPv4 and IPv6 addresses."""

  143.         # IPv4 address

  144.         ip_set = generate_ip_set(("1.2.3.4",))

  145.         self.assertEqual(len(ip_set.iter_cidrs()), 4)

  146. 

  147.         # IPv4 CIDR

  148.         ip_set = generate_ip_set(("1.2.3.4/24",))

  149.         self.assertEqual(len(ip_set.iter_cidrs()), 4)

  150. 

  151.         # IPv6 address

  152.         ip_set = generate_ip_set(("2001:db8::8a2e:370:7334",))

  153.         self.assertEqual(len(ip_set.iter_cidrs()), 1)

  154. 

  155.         # IPv6 CIDR

  156.         ip_set = generate_ip_set(("2001:db8::/104",))

  157.         self.assertEqual(len(ip_set.iter_cidrs()), 1)

  158. 

  159.         # The addresses can overlap OK.

  160.         ip_set = generate_ip_set(("1.2.3.4", "::1.2.3.4"))

  161.         self.assertEqual(len(ip_set.iter_cidrs()), 4)

  162. 

  163.     def test_extra(self) -> None:

  164.         """Extra IP addresses are treated the same."""

  165.         ip_set = generate_ip_set((), ("1.2.3.4",))

  166.         self.assertEqual(len(ip_set.iter_cidrs()), 4)

  167. 

  168.         ip_set = generate_ip_set(("1.1.1.1",), ("1.2.3.4",))

  169.         self.assertEqual(len(ip_set.iter_cidrs()), 8)

  170. 

  171.         # They can duplicate without error.

  172.         ip_set = generate_ip_set(("1.2.3.4",), ("1.2.3.4",))

  173.         self.assertEqual(len(ip_set.iter_cidrs()), 4)

  174. 

  175.     def test_bad_value(self) -> None:

  176.         """An error should be raised if a bad value is passed in."""

  177.         with self.assertRaises(ConfigError):

  178.             generate_ip_set(("not-an-ip",))

  179. 

  180.         with self.assertRaises(ConfigError):

  181.             generate_ip_set(("1.2.3.4/128",))

  182. 

  183.         with self.assertRaises(ConfigError):

  184.             generate_ip_set((":::",))

  185. 

  186.         # The following get treated as empty data.

  187.         self.assertFalse(generate_ip_set(None))

  188.         self.assertFalse(generate_ip_set({}))